Based on extensive research of the market (compromised domains, autonomous crawling, AI-driven script analysis, and behavioral review of third-party JavaScript dependencies), the report says cybercriminals are injecting malicious code into service workers and the Progressive Web App (PWA) logic of popular WordPress themes.
